15-May-2011 14:19

‘Cloud’ security worries.. again!

Amazon ‘Cloud Servers' Used in Sony PlayStation Network Attack - Hmmmm...

The recently reported hacking & breached security at Sony and access gained to sensitive data for over 77 million subscribers has again raised serious concerns about Cloud-based security issues.

The ‘Sony’ hackers used Amazon's web services cloud to launch the attack - Bloomberg News reported.

Reports are emerging (source: bloomberg.net) that Amazon’s Web Services cloud- computing unit was used by hackers in last month’s attack against Sony online entertainment systems..

The attackers, using an alias, rented a server from Amazon's EC2 service and started the hacking attack from there.

Apparently, anonymous reports say that ‘the account has now been closed’.

Unsurprisingly, neither Sony nor Amazon directors would comment on the claims.

Bloomberg doesn't say how Amazon's cloud service was used to mount the attack.

If the report is correct, it wouldn't be the first time it's been used by hackers.

It does show how easy it may be for hackers to use the “cloud” to carry out serious online thefts of personal information.

This attack has involved the personal accounts of more than 100 million Sony customers & according to a Sony report was, “a very carefully planned, very professional, highly sophisticated criminal cyber attack.”

The report continued that, the hackers didn’t just break into the Amazon servers, but they signed up for the regular service as any legitimate company would & could but used fake information.

It again brings into question the role of Amazon Web Services & associated concerns many have voiced over the security of computing services delivered via others’ remote servers - normally referred to as ‘cloud computing’.

Worrying? What do you think?

Norman